Report - fowcon.com.au/BendiGoScratch.zip

Report Overview

Submitted URL
fowcon.com.au/BendiGoScratch.zip
IP
122.201.64.145
ASN
#38719 Dreamscape Networks Limited
Submitted
2024-04-26 04:15:09
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fowcon.com.au	unknown	unknown	2015-12-27	2022-11-30	486 B	261 kB	122.201.64.145

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
fowcon.com.au/BendiGoScratch.zip
IP
122.201.64.145
ASN
#38719 Dreamscape Networks Limited

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
261 kB (260950 bytes)
Hash
85b4693cb72adfca035e51c0c4ae74b5
d2e3adf51dafdd24016468ae4662d6211260b51e
c848d16a102a569834ebe0f3c9b1f7b7ef0bd039b076b115d1a0251da91eda80

Archive (30)

Modified	Filename	Size	Md5	File type
2023-10-22 06:29	bite.php	10 kB	06336175604eb981a5788bcd84a0b6b6	PHP script, ASCII text, with CRLF line terminators
2023-10-22 06:29	country.php	45 kB	1e7f16ed626cb949ff33897948cdde33	PHP script, ASCII text, with CRLF line terminators
2023-10-22 06:29	geoplugin.class.php	5.3 kB	065653da11fb96ba47a4c16977981fcf	PHP script, ASCII text, with CRLF line terminators
2023-10-22 06:29	index.php	183 B	57eb774f92340b6ce384f4b6bb4401bf	PHP script, ASCII text
2023-10-22 06:29	logger.php	1.5 kB	fa1246010d778353172c1d93f873f49b	PHP script, ASCII text, with CRLF line terminators
2023-10-22 06:29	index.php	1.0 kB	d2ed577c39217ad145c26641875d6fce	PHP script, ASCII text, with CRLF line terminators
2023-10-22 06:29	antibot.php	23 kB	687db873ff19cd58a513898b020a275f	PHP script, ASCII text, with very long lines (14292), with CRLF line terminators
2023-10-22 06:29	phone.svg	629 B	e4e1bca38046ceed7b1027fed3fc9f2a	SVG Scalable Vector Graphics image
2023-10-22 06:29	app-store.svg	6.9 kB	c83a26975718497a188d7d176f5d7daf	SVG Scalable Vector Graphics image
2023-10-22 06:29	bottom-banner.jpg	123 kB	cb4a38644b50fd4b6d4c78ea73a46862	JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6, PhotometricInterpretation=RGB, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 1100x400, components 3
2023-10-22 06:29	logo.svg	5.9 kB	8690a5eef6bc13594d842861a343daee	SVG Scalable Vector Graphics image
2023-10-22 06:29	play-store.svg	7.2 kB	f3dad7146c6dc84b0c9c4b70f99b7f33	SVG Scalable Vector Graphics image
2023-10-22 06:29	finish.php	47 kB	6fd4027b2df9073f9aa8a259a2808aed	PHP script, Unicode text, UTF-8 (with BOM) text, with very long lines (6704)
2023-10-22 06:32	id.php	122 B	160789ae6f81dfee66f2647c37f1856d	PHP script, ASCII text
2023-10-22 06:29	index.php	12 kB	2e060e90a64491bd983da88af49dc6d7	PHP script, Unicode text, UTF-8 (with BOM) text, with very long lines (680)
2023-10-22 06:29	index3.php	52 kB	8182381caa470882f95f708f54b74f31	PHP script, Unicode text, UTF-8 (with BOM) text, with very long lines (6704)
2023-10-22 06:29	loading.php	49 kB	b300d313747ccf5a6c1f9b98da4004cd	PHP script, Unicode text, UTF-8 (with BOM) text, with very long lines (6704)
2023-10-22 06:29	login.css	9.5 kB	9e0e36eb2df310e938d9e90f07a570cd	ASCII text, with CRLF line terminators
2023-10-22 06:29	login.html	13 kB	2177f0a85e3e224cb7ebe28e85e2d7f9	HTML document, Unicode text, UTF-8 text, with very long lines (678), with CRLF line terminators
2023-10-22 06:29	login-mobile.css	1.8 kB	efcd063f4f951fbd6fa8f671a9ddcaa8	ASCII text, with CRLF line terminators
2023-10-22 06:29	login-other.css	1.6 kB	968233a7d2f47630c267a6776c71f184	ASCII text, with CRLF line terminators
2023-10-22 06:29	otp.php	47 kB	0e3e4f330d17f2e7aac43b1a723e7ad7	PHP script, Unicode text, UTF-8 (with BOM) text, with very long lines (6704)
2023-10-22 06:29	otploading.php	49 kB	56de919dd1615933a1759c0114700c0d	PHP script, Unicode text, UTF-8 (with BOM) text, with very long lines (6704)
2023-10-22 06:29	otppost.php	648 B	828161edbd0bb298dfbfd64f905cfd41	PHP script, Unicode text, UTF-8 (with BOM) text
2023-10-22 06:29	otpsec.php	47 kB	03ca54595e8e1f2e596b88514e070e2b	PHP script, Unicode text, UTF-8 (with BOM) text, with very long lines (6704)
2023-10-22 06:29	otpsecpost.php	644 B	38f40ca8dea77d1a6db64006f1dbaeb7	PHP script, Unicode text, UTF-8 (with BOM) text
2023-10-22 06:29	pin.php	47 kB	2f4b52a942d84f7a0fa22f630049c185	PHP script, Unicode text, UTF-8 (with BOM) text, with very long lines (6704)
2023-10-22 06:29	pinpost.php	644 B	09bf9f1135a140950a23c5268f8ed1d4	PHP script, Unicode text, UTF-8 (with BOM) text
2023-10-22 06:29	post1.php	709 B	dccd3407fced6e0b4d1a6a0473626481	PHP script, Unicode text, UTF-8 text, with CRLF line terminators
2023-10-22 06:29	post3.php	1.5 kB	773f83ca03ff65718ce71610075ead13	PHP script, Unicode text, UTF-8 text, with CRLF line terminators

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

	URL	IP	Response	Size
	fowcon.com.au/BendiGoScratch.zip	122.201.64.145	200 OK	261 kB
URL User Request GET HTTP/2 fowcon.com.au/BendiGoScratch.zip IP 122.201.64.145:443 ASN #38719 Dreamscape Networks Limited Certificate IssuerThe USERTRUST Network Subjectfowcon.com.au FingerprintB8:0E:A4:63:98:6B:C2:04:00:F6:F6:22:F7:02:93:31:27:67:52:6C ValiditySun, 22 Oct 2023 00:00:00 GMT - Mon, 28 Oct 2024 23:59:59 GMT File type Zip archive data, at least v2.0 to extract, compression method=store Size 261 kB (260950 bytes) Hash 85b4693cb72adfca035e51c0c4ae74b5 d2e3adf51dafdd24016468ae4662d6211260b51e c848d16a102a569834ebe0f3c9b1f7b7ef0bd039b076b115d1a0251da91eda80 HTTP Headers `GET /BendiGoScratch.zip HTTP/1.1 Host: fowcon.com.au User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 26 Apr 2024 04:14:44 GMT content-type: application/zip content-length: 260950 last-modified: Sat, 28 Oct 2023 18:25:55 GMT accept-ranges: bytes X-Firefox-Spdy: h2`

fowcon.com.au/BendiGoScratch.zip

122.201.64.145

200 OK

261 kB

URL User Request GET HTTP/2
fowcon.com.au/BendiGoScratch.zip
IP
122.201.64.145:443
ASN
#38719 Dreamscape Networks Limited

Certificate
IssuerThe USERTRUST Network
Subjectfowcon.com.au
FingerprintB8:0E:A4:63:98:6B:C2:04:00:F6:F6:22:F7:02:93:31:27:67:52:6C
ValiditySun, 22 Oct 2023 00:00:00 GMT - Mon, 28 Oct 2024 23:59:59 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
261 kB (260950 bytes)
Hash
85b4693cb72adfca035e51c0c4ae74b5
d2e3adf51dafdd24016468ae4662d6211260b51e
c848d16a102a569834ebe0f3c9b1f7b7ef0bd039b076b115d1a0251da91eda80

HTTP Headers

GET /BendiGoScratch.zip HTTP/1.1
Host: fowcon.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 04:14:44 GMT
content-type: application/zip
content-length: 260950
last-modified: Sat, 28 Oct 2023 18:25:55 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (30)

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers